>Australian government investigating 'large-scale ransomware' data breach of script provider MediSecure
This is rather 'strange' in a few ways.
-The company is a prescription exchange service, which facilitates electronic prescribing and dispensing of prescriptions.
-MediSecure was one of two companies awarded contracts by the federal gov
-to provide PBS e-script services until late last year, when the tender was granted exclusively to another company, eRx.
-In October last year, the ACCC granted authorisation for MediSecure to transfer all publicly- funded electronic prescriptions and data to eRx.
-MediSecure said at the time it would remain in the market providing private prescriptions
so, company has a contract, contract goes to another company, data is transfered, and yet they hang on to data in order to provide "private services".
So they never deleted the data, they retained it, then got hacked. AND "and believes the incident originated from a third-party vendor."
WhoIS 3rd party? is it eRx? They already have the data, so whoIS this unknown 3rd party they were using? for what purpose. All smells bit sus to anon